Hackers have managed to steal information associated with more than 43 million accounts belonging to customers of Weebly, a San Francisco-based web hosting service that provides a drag-and-drop website builder.
read more
U.S. Spy Worker Stole ‘Astonishing Quantity’ of Data: Prosecutors
US prosecutors on Thursday said they expected to file espionage charges against a private contractor for the National Security Agency suspected of stealing an "astonishing quantity" of classified information.
read more
“Dirty COW” Linux Kernel Exploit Seen in the Wild
A new Linux kernel vulnerability disclosed on Wednesday allows an unprivileged local attacker to escalate their privileges on a targeted system. Red Hat said it was aware of an exploit in the wild.
read more
“Dirty COW” Linux Kernel Flaw Exploit Seen in the Wild
A new Linux kernel vulnerability disclosed on Wednesday allows an unprivileged local attacker to escalate their privileges on a targeted system. Red Hat said it was aware of an exploit in the wild.
read more
Sarvdap Spambot Checks IP Blacklists
The Sarvdap spambot was recently observed checking the IP addresses of infected hosts against common blacklists, in an attempt to ensure that its spam email is successfully delivered, Palo Alto Networks security researchers reveal.
read more
From Chasing Alerts to Hunting Threats: What Makes an Effective SOC is Evolving
Whether you call it a SOC, a CSOC, a Cyber Defense Center, or something else, security operation centers have the same fundamental mission – to help organizations detect, analyze, respond to, report on, and prevent cyber security incidents. But what it takes to do that effectively has changed in this ever-evolving threat landscape, putting an even greater burden on analysts and the technologies they rely upon.
read more
Lexmark Patches Critical Flaw in Printer Management Tool
Lexmark has released an update for its Markvision Enterprise printer management software to address serious vulnerabilities that could allow a remote attacker to execute arbitrary code on the server hosting the product.
Markvision Enterprise is a web-based tool that allows IT professionals to manage up to 20,000 networked printers, regardless of the manufacturer.
read more
Windows Zero-Day Exploited by “FruityArmor” APT Group
A Windows zero-day vulnerability patched this month by Microsoft was discovered by Kaspersky Lab researchers in attacks conducted by an advanced persistent threat (APT) actor dubbed by the security firm “FruityArmor.”
read more
Russian Arrested by Czech Police Tied to 2012 LinkedIn Hack
The Russian national arrested this month by Czech police in cooperation with the FBI is believed to have been involved in the hacking of social media company LinkedIn in 2012.
read more
Yahoo Calls for ‘Transparency’ From U.S. Spy Agencies
Yahoo asked US spy agencies Wednesday to offer public "transparency" about data they make internet companies provide on users and to declassify any secret order served on the company.
read more
